Vulnerability Description
The Research in Motion BlackBerry 7270 with 4.0 SP1 Bundle 83 allows remote attackers to cause a denial of service (blocked call reception) via a malformed SIP invite message, possibly related to multiple format string specifiers in the From field, a spoofed source IP address, and limitations of the function stack frame.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Rim | Blackberry Software | 4.0 |
| Rim | Blackberry 7270 | All versions |
References
- http://osvdb.org/37648
- http://secunia.com/advisories/25824
- http://www.blackberry.com/btsc/articles/225/KB12700_f.SAL_Public.html
- http://www.kb.cert.org/vuls/id/785257US Government Resource
- http://www.securityfocus.com/bid/24548
- http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=211&
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35074
- http://osvdb.org/37648
- http://secunia.com/advisories/25824
- http://www.blackberry.com/btsc/articles/225/KB12700_f.SAL_Public.html
- http://www.kb.cert.org/vuls/id/785257US Government Resource
- http://www.securityfocus.com/bid/24548
- http://www.sipera.com/index.php?action=resources%2Cthreat_advisory&tid=211&
- https://exchange.xforce.ibmcloud.com/vulnerabilities/35074
FAQ
What is CVE-2007-3444?
CVE-2007-3444 is a vulnerability with a CVSS score of 4.3 (MEDIUM). The Research in Motion BlackBerry 7270 with 4.0 SP1 Bundle 83 allows remote attackers to cause a denial of service (blocked call reception) via a malformed SIP invite message, possibly related to mult...
How severe is CVE-2007-3444?
CVE-2007-3444 has been rated MEDIUM with a CVSS base score of 4.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2007-3444?
Check the references section above for vendor advisories and patch information. Affected products include: Rim Blackberry Software, Rim Blackberry 7270.